Good catch :). This should be easy enough to get into 1.2.6.
----- Original Message ----- From: "Sandy McArthur" <[EMAIL PROTECTED]> To: "Tomcat Developers List" <[EMAIL PROTECTED]> Sent: Wednesday, July 14, 2004 12:21 PM Subject: Re: mod_jk 1.0.26 release ? - session tracking cookie > On Jul 14, 2004, at 11:17 AM, Henri Gomez wrote: > > > jk 1.2.6 seems to be in a good shape and a release should be welcome > > for many users. > > > > I'd like to release jk 1.2.6 next week. > > > > Any objections ? > > I have one gripe with the way mod_jk chooses the session tracking > cookie. > > I'm not a dev but I just tracked down a bug that has been causing us, > University of Florida, some pain for a few weeks. > > I'm currently verifying that I'm not full of it before I filed a bug > report but the short version is: > > mod_jk seems to pick the first cookie ending in JSESSIONID such as > PSJSESSIONID as opposed to what the servlet spec says in section 7.1.1: > "The name of the session tracking cookie must be JSESSIONID." > > Take a look at the get_cookie function in jk_lb_worker.c and walk > though it with input similar to: > > Cookie: PSJSESSIONID=FOOBAR; JSESSIONID=BAZZORK.jvm# > > Sandy
smime.p7s
Description: S/MIME cryptographic signature
This message is intended only for the use of the person(s) listed above as the intended recipient(s), and may contain information that is PRIVILEGED and CONFIDENTIAL. If you are not an intended recipient, you may not read, copy, or distribute this message or any attachment. If you received this communication in error, please notify us immediately by e-mail and then delete all copies of this message and any attachments. In addition you should be aware that ordinary (unencrypted) e-mail sent through the Internet is not secure. Do not send confidential or sensitive information, such as social security numbers, account numbers, personal identification numbers and passwords, to us via ordinary (unencrypted) e-mail.
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
